Amendments to the Claims 



1 . (currently amended) A method for transmitting secured data over a 
wireless link to a gat e way prov i d i ng acc e ss to a w i d e ar e a n e twork , the method 
comprising: 

encrypting a payload according to a first session key e ncryption a l gor i thm ; 
adding a header to the encrypted payload to form a data packet; 
encrypting the first session key; 

encrypting th e e ncrypt e d pay l oad and th e forw a rd i ng h e ad e r of the data 
packet according to a second session key encrypt i on a l gor i thm, tho second 
e ncrypt i on a l gor i thm b o ing an encrypt i on algorithm usod for socurod 
communications ov e r th e wir e less li nk, such that the data pack e t i s d e crypt e d 
accord i ng to th e s e cond e ncrypt i on algor i thm at th e oth e r e nd of th e w i r ele ss l ink 
and pr i or to th e gat e way forward i ng th e data pack e t to th e w i d e a r e a n e twork ; 

CI I IVJ 

transmitting the encrypted first session key to a wireline device; and 
transmitting the encrypted data packet over atbe-wireless link to athe 
gatewa y which decrypts the encrypted data packet, recreates the encrypted 
payload and the header, and forwards the encrypted payload and the header to 
the wireline device over an open network . 

2. (currently amended) The method of claim 1 , wherein the first 
session key a l gor i thm uses a symmetric key. 
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3. (currently amended) The method of claim 1 , further comprising: 
receiving the encrypted first session key and the encrypted pavload at the 
wireline device data pack e t at th e gat e way ; 

decrypting the encrypted first session kev data packet at the gat e way 
according to th e s e cond algorithm ;j*nd 

decrypting the encrypted pavload using the decrypted first session key. 

forward i ng the r e cov e r e d data pack e t to a computer on th e w i d e ar e a 
n e twork; and 

decrypting the pay l oad at th e computer on tho wid e ar e a n e twork 
accord i ng to th e f i rst a l gor i thm. 

4. (currently amended) The method of claim 1 , wherein the fifst 
second session key a l gorithm uses a symmetric session key. 

5. (canceled). 

6. (currently amended) A device for transmitting data over a wireless 
link to a gateway providing access to a wide area network; comprising: 

a wir ele ss transc ei v e r; and 

an encryption engine coup le d to tho w i r ele ss transc e iv e r w hich generates 
a first session key, encrypts for e ncrypting a payload according to a first session 
keyo ncrypt i on a l gorithm , adds add i ng a header to the payload to form a data 
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packet, encrypts the first session key; and encrypts e ncrypting the data packet 
according to a second session key e norypt i on a l gor i thm, th e s e cond e ncrypt i on 
a l gor i thm bo i ng an a l gor i thm for s e cur e d commun i cat i ons over the w i re le ss l ink, 
such that tho data packet is d e crypted according to th e s e cond e ncrypt i on 
algorithm at the oth e r o nd of th e wir ele ss li nk and pr i or to the gat e way forwarding 
th e data pack e t to th e wid e ar e a n e twork. ; and 

a wireless transceiver coupled to the encryption engine which transmits 
the encrypted first session key and transmits the encrypted data packet over a 
wireless link to a gateway which decrypts the encrypted data packet, recreates 
the encrypted pavload and the header, and forwards the encrypted pavload and 
the header to a server over an open network. 

7. (canceled). 

8. (currently amended) The device of claim 6, wherein the payload 
comprises location information regarding a_the-location of the wireless device. 

9. (previously presented) The device of claim 6, wherein the first 
encryption algorithm employs a symmetric key. 

10. (currently amended) A method for secured communication 
between a mobile device and a server on a wide area network, comprising: 

gen e rat i ng a symm e tr i c s e ss i on k e y at th e mobi le d e vic e ; 
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encrypting an unencrypted first t h o symm e tric session key at the mobile 
device us i ng a pub li c k e y assoc i at e d with th e s e rv e r ; 

transmitting the encrypted first session key to the server over a wireless 
link w i th a gateway to the w i do ar e a n e twork ; 

decrypting the encrypted first session key at the serve r us i ng a pr i vat e k e y 
corr e sponding to the pub li c k e y ; 

encrypting a payload at the mobile device using the unencrypted first 
session key symm e tr i c s e ssion k e y at th e mob ile d e v i c e; 

adding a header to the payload to form a data packet at the mobile device; 

encrypting the e ncrypt e d pay l oad and tho head e r of th e data packet 
according to a second session key configured us i ng an e ncryption algor i thm for 
secured communications over the wireless lin k to form an e ncrypt e d data pack e t 
at th e mobile devic e , th o e ncrypt i on data pack e t b ei ng so prov i ded such that th e 
data packet is decrypted according to th o s o cond e ncrypt i on a l gor i thm a t th e 
oth o r o nd of th e wir e l o ss l ink and prior to th e gat e way forwarding th e data pack e t 
to th e w i d e ar e a n e twork ; and 

transmitting the encrypted data packet from the mobile device to athe 
gatewa y which decrypts the encrypted data packet, recreates the encrypted 
payload and the header and forwards the decrypted encrypted payload and the 
header to the server . 

11. (currently amended) The method of claim 10, further comprising: 
receiving the encrypted data packet at the gateway; 



M-11702 US 

Examiner: Teslovich, Tamara 



-5- 



Serial No.: 09/927,928 
Group Art Unit: 2137 



decrypting the encrypted data packet at the gateway to recover a 
decrypted data packet comprising , the decrypt e d data pack e t h a v i ng the 
encrypted payload encrypted with the first symm e tr i c session key; 

forwarding the decrypted data packet to the server over the wide area 
network; 

decrypting the encrypted first session key at the server using a private 
key; and 

decrypting the encrypted payload at the server using the decrypted first 
session key. 

12-14. (canceled). 

15. (original) The method of claim 10, wherein the payload includes 
location information. 

16. (currently amended) The method of claim 10, wherein the 
generating a first symm e tr i c session key at the mobile device further comprises 
generating the first svmmotric session key based on a random number. 

17. (currently amended) The method of claim 10, wherein the 
encrypting a payload using the first symm e tr i c session key employs at least one 
of the encryption algorithms DESX or DES. 
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18-19. (canceled). 

20. (currently amended) The method of claim 1 , wherein the first 
session key a l gor i thm compris e s implements at least one of the encryption 
algorithms DESX or DES. 

21-24. (canceled). 

25. (previously presented) The method of claim 1, wherein the data 
packet includes location information. 

26. (currently amended) the method of claim 4, wherein the first 
symm e tr i c session key is generated based on a random number. 

27. (previously presented) The device of claim 6, further comprising a 
memory coupled to the encryption engine, the memory having a public key 
associated with a server on the wide area network stored therein. 

28. (canceled). 

29. (currently amended) A computer readable medium, comprising 
program instructions for performing a method comprising: 

encrypting a payload according to a first session kev e norypt i on a l gor i thm : 
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adding a header to the encrypted payload to form a data packet; 
encrypting the first session key; 

encrypting tho onorypt e d pay l oad and the h e ad e r of t he data packet 
according to a second session key e noryption a l gor i thm, th e s e cond e ncrypt i on 
a l gorithm configured b e ing an encrypt i on a l gor i thm us e d for secured 
communications over a wireless link , such that th e data pack e t i s d e crypt e d 
according to th e s e cond e ncrypt i on al gor i thm at th e oth e r e nd of th e w i r ele ss li nk 
and prior to th e gat e way forwarding th e data packet to tho w i de area n e twork ; 

orvrl 

CTrTCT 

transmitting the encrypted first session key to a server; and 
transmitting the encrypted data packet to a serv e r on a w i d e ar e a n e twork 
over a wireless link towith-a gateway which decrypts the encrypted data packet, 
recreates the encrypted payload and the header, and forwards the encrypted 
payload and the header over an open network to the server which decrypts the 
encrypted first session key and decrypts the encrypted payload using the 
decrypted first session key provid i ng acc e ss to th e wid e ar e a n e twork . 

30. (currently amended) The computer readable medium of claim 29, 
wherein the first session key a l gor i thm uses a symmetric key. 

31 . (currently amended) The computer readable medium of claim 29, 
the method further comprising: 

receiving the data packet at the gateway; 
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decrypting the data packet at the gateway according to the second 
session key a l gor i thm; 

forwarding the encrypted pavload to the serve r r e cov e r e d data pack e t to a 
comput e r on th e wid e ar e a n e twork; and 

receiving the encrypted first session key at the server; 

decrypting the encrypted first session key using a private key; and 

decrypting the payload at th e computer on th e w i d o area n e twork 
according to the first session key a l gor i thm . 

32. (currently amended) The computer readable medium of claim 29, 
wherein the first session key algorithm uses a symmetric session key. 

33. (previously presented) The computer readable medium of claim 
29, wherein the first session key a l gor i thm comprises at least one of the 
encryption algorithms DESX or DES. 

34. (previously presented) The computer readable medium of claim 
29, wherein the data packet includes location information. 

35. (previously presented) The computer readable medium of claim 
32, wherein the symmetric session key is generated based on a random number. 
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